diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 78caa6fd37..a920bdb81c 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -59,7 +59,7 @@ jobs: with: persist-credentials: false - name: Install uv and Python ${{ matrix.python }} - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7 + uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57 # v7 with: python-version: ${{ matrix.python }} activate-environment: true @@ -74,11 +74,11 @@ jobs: - name: Set up nix if: matrix.type == 'dapp' - uses: cachix/install-nix-action@4e002c8ec80594ecd40e759629461e26c8abed15 # v31 + uses: cachix/install-nix-action@616559265b40713947b9c190a8ff4b507b5df49b # v31 - name: Set up cachix if: matrix.type == 'dapp' - uses: cachix/cachix-action@3ba601ff5bbb07c7220846facfa2cd81eeee15a1 # v16 + uses: cachix/cachix-action@1eb2ef646ac0255473d23a5907ad7b04ce94065c # v17 with: name: dapp diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml index 2def8c9151..5d562c8d43 100644 --- a/.github/workflows/docker.yml +++ b/.github/workflows/docker.yml @@ -25,17 +25,17 @@ jobs: persist-credentials: false - name: Set up QEMU - uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # v3 + uses: docker/setup-qemu-action@ce360397dd3f832beb865e1373c09c0e9f86d70a # v4.0.0 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3 + uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4.0.0 id: buildx with: install: true - name: Set Docker metadata id: metadata - uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5 + uses: docker/metadata-action@030e881283bb7a6894de51c315a6bfe6a94e05cf # v6.0.0 with: images: | ghcr.io/${{ github.repository }} @@ -45,14 +45,14 @@ jobs: type=edge - name: GitHub Container Registry Login - uses: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9 # v3 + uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0 with: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - name: Docker Build and Push - uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6 + uses: docker/build-push-action@bcafcacb16a39f128d818304e6c9c0c18556b85f # v6 with: platforms: linux/amd64,linux/arm64/v8,linux/arm/v7 target: final diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml index 9a31654424..5c9eb43433 100644 --- a/.github/workflows/docs.yml +++ b/.github/workflows/docs.yml @@ -32,9 +32,9 @@ jobs: with: persist-credentials: false - name: Setup Pages - uses: actions/configure-pages@983d7736d9b0ae728b81ab479565c72886d7745b # v5 + uses: actions/configure-pages@45bfe0192ca1faeb007ade9deae92b16b8254a0d # v6.0.0 - name: Install uv and Python - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7 + uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57 # v7 with: python-version: "3.10" activate-environment: true @@ -42,10 +42,10 @@ jobs: - run: uv sync --group doc - run: pdoc -o html/ slither '!slither.tools' # TODO fix import errors on pdoc run - name: Upload artifact - uses: actions/upload-pages-artifact@7b1f4a764d45c48632c6b24a0339c27f5614fb0b # v4 + uses: actions/upload-pages-artifact@fc324d3547104276b827a68afc52ff2a11cc49c9 # v5.0.0 with: # Upload the doc path: './html/' - name: Deploy to GitHub Pages id: deployment - uses: actions/deploy-pages@d6db90164ac5ed86f2b6aed7e0febac5b3c0c03e # v4 + uses: actions/deploy-pages@cd2ce8fcbc39b97be8ca5fce6e763baed58fa128 # v5.0.0 diff --git a/.github/workflows/doctor.yml b/.github/workflows/doctor.yml index ba447ada9c..3023e82c10 100644 --- a/.github/workflows/doctor.yml +++ b/.github/workflows/doctor.yml @@ -38,7 +38,7 @@ jobs: python-version: ${{ matrix.python }} - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7 + uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57 # v7 with: enable-cache: true diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index 18ae548fe0..9510a586e4 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -63,7 +63,7 @@ jobs: persist-credentials: false - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7 + uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57 # v7 with: enable-cache: true @@ -89,7 +89,7 @@ jobs: persist-credentials: false - name: Run markdownlint - uses: DavidAnson/markdownlint-cli2-action@07035fd053f7be764496c0f8d8f9f41f98305101 # v22 + uses: DavidAnson/markdownlint-cli2-action@ce4853d43830c74c1753b39f3cf40f71c2031eb9 # v23.0.0 with: globs: "docs/**/*.md" config: .github/linters/.markdownlint.json diff --git a/.github/workflows/pip-audit.yml b/.github/workflows/pip-audit.yml index cb8313fccf..3cde5298d6 100644 --- a/.github/workflows/pip-audit.yml +++ b/.github/workflows/pip-audit.yml @@ -30,7 +30,7 @@ jobs: persist-credentials: false - name: Install uv and Python - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7 + uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57 # v7 with: python-version: "3.10" enable-cache: true diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 265e8df8a9..e3798b9ce8 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -17,14 +17,14 @@ jobs: persist-credentials: false - name: Install uv - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7 + uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57 # v7 with: activate-environment: true enable-cache: true - name: Build distributions run: uv build - name: Upload distributions - uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: slither-dists path: dist/ @@ -39,16 +39,16 @@ jobs: - build-release steps: - name: fetch dists - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: name: slither-dists path: dist/ - name: publish - uses: pypa/gh-action-pypi-publish@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e # v1.13.0 + uses: pypa/gh-action-pypi-publish@cef221092ed1bacb1cc03d23a2d87d1d172e277b # v1.14.0 - name: sign - uses: sigstore/gh-action-sigstore-python@a5caf349bc536fbef3668a10ed7f5cd309a4b53d # v3.2.0 + uses: sigstore/gh-action-sigstore-python@04cffa1d795717b140764e8b640de88853c92acc # v3.3.0 with: inputs: ./dist/*.tar.gz ./dist/*.whl release-signing-artifacts: true diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 6204b5a14e..39f6146678 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -41,7 +41,7 @@ jobs: with: persist-credentials: false - name: Install uv and Python ${{ matrix.python }} - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7 + uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57 # v7 with: python-version: ${{ matrix.python }} activate-environment: true @@ -52,7 +52,7 @@ jobs: uv sync --group test - name: Setup node - uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v6 + uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6 with: node-version: '20' cache: 'npm' @@ -119,7 +119,7 @@ jobs: with: persist-credentials: false - name: Install uv and Python - uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7 + uses: astral-sh/setup-uv@cec208311dfd045dd5311c1add060b2062131d57 # v7 with: python-version: "3.10" activate-environment: true @@ -128,7 +128,7 @@ jobs: - run: uv pip install coverage[toml] - name: download coverage data - uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7 + uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1 with: pattern: coverage-data-* merge-multiple: true